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IN THE CLAIMS 

This is a complete and current listing of the claims, marked with status identifiers in 
parentheses. The following listing of claims will replace all prior versions and listings of 
claims in the application. 

Claims 1-20 are cancelled. 

21. Method for managing the security of applications with a security module functioning 
in an equipment connected to a network, said network being managed by a control server of 
an operator, said applications using resources as data or functions stored in a security module 
locally connected to said equipment, comprising the following preliminary steps: 

reception of data comprising at least the type and software version of the equipment 
and the identity of the security module, via the network, by the control server, 
analysis and verification by the control server of said data, 
generation of a cryptogram from the result of the verification of said data, and 
transmission of said cryptogram, via the network and the equipment, to the security module, 
said method further comprises steps wherein the security module analyses the received 
cryptogram and activates, respectively deactivates the resources as data or functions used by 
at least one application installed in the equipment, said cryptogram comprising the 
instructions conditioning the functioning of the application according to criteria established 
by the supplier of said application and/or the operator and/or the user of the equipment. 

22. Method according to claim 21, wherein the equipment is a mobile equipment of 
mobile telephony. 

23. Method according to claim 21, wherein the network is a mobile network of the GSM, 
GPRS or UMTS type. 
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24. Method according to claim 21, wherein the security module is a subscriber module of 
a SIM card type inserted into the mobile equipment of mobile telephony. 

25. Method according to claim 24, wherein the identification of the set mobile equipment 
/ subscriber module is carried out from the identifier of the mobile equipment and from the 
identification number of the subscriber module pertaining to a subscriber to the mobile 
network. 

26. Method according to claim 21, wherein the criteria defines the usage limits of an 
application according to the risk associated to said application and to the type and the 
software version of the mobile equipment that the operator and/or the application supplier 
and/or the user of the mobile equipment want to take in account. 

27. Method according to claim 22 carried out after each connection of the mobile 
equipment to the network. 

28. Method according to claim 22 carried out after each of updating the software version 
of the mobile equipment. 

29. Method according to claim 22, carried out after each activation or deactivation of an 
application on the mobile equipment 

30. Method according to claim 24 carried out after each updating of the software version 
of the subscriber module. 

31. Method according to claim 24 carried out after each updating of the resources on the 
subscriber module. 

32. Method according to claim 21 carried out periodically at a rate given by the control 
server. 

33. Method according to claim 22 carried out after each initialization of an application on 
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the mobile equipment. 

34. Method according to claim 24 wherein the subscriber module, prior to the execution 
of the instructions given by the cryptogram, compares the identifier of the mobile equipment 
with that previously received and only initiates the verification operation if the identifier has 
changed. 

35. Method according to claim 25, wherein the control server, prior to the transmission of 
the cryptogram, compares the identifier of the mobile equipment with that previously 
received and only initiates the verification operation if the identifier has changed. 

36. Method according to claim 24, wherein the cryptogram is made up of a message 
encrypted by the control server with the aid of an asymmetrical or symmetrical encryption 
key from a data set containing, among other data, the identifier of the mobile equipment, the 
identification number of the subscriber module, the resource references of the subscriber 
module and a predictable variable. 

37. Method according to claim 24, wherein the subscriber module transmits to the control 
server, via the mobile equipment and the mobile network, a confirmation message when the 
subscriber module has received the cryptogram, said message confirming the correct 
reception and the adequate processing of the cryptogram by the subscriber module. 

38. Method according to claim 21, wherein the equipment is a Pay-TV decoder or a 
computer to which the security module is connected. 

39. Security module comprising resources intended to be locally accessed by at least one 
application installed in an equipment connected to a network, said equipment comprising 
reading and data transmission means comprising at least the identifier of the equipment and 
the identifier of the security module, said module further comprises means for reception, 
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analysis and execution of instructions contained in a cryptogram, said instructions 
conditioning the functioning of the application according to criteria predetermined by the 
supplier of said application and/or the operator and/or the user of the equipment. 
40. Security module according to claim 39, constituting a subscriber module of the "SIM 
card" type connected to a mobile equipment. 



